China Securities Regulatory Commission issued four financial industry standards, including the Interface of Capital Services for OTC Business of Securities Companies
Recently, China Securities Regulatory Commission (CSRC) issued four financial industry standards, namely, "Capital Service Interface for OTC Business of Securities Companies", "Internal Interface Account Management of Securities and Futures Institutions", "Internal Interface Information Data of Securities and Futures Institutions", and "Guidelines for Penetration Testing of Securities and Futures Industry Information System", which will be implemented as of the date of promulgation.
The financial industry standard "Interface of OTC Business Capital Services of Securities Companies" defines the business process and scenario of OTC capital services of securities companies, and defines the format, elements and interface form of business messages, which is applicable to the data exchange between the OTC capital settlement system of securities companies and settlement users. The formulation and implementation of the standards will help to improve the automation level of the OTC business capital services of securities companies, provide conditions for the dynamic monitoring and supervision of the funds of the off-site business, and play a positive role in further standardizing the development of the OTC business.
The two financial industry standards, "Internal Interface Account Management of Securities and Futures Institutions" and "Internal Interface Information Data of Securities and Futures Institutions", respectively regulate the data interface of the internal account management business system and the information data business system of the institution. By sorting out the data interaction scenarios between the core business modules, the relevant requirements for the data field, data format and data interaction protocol of the data interface are put forward, It is of guiding significance for industry institutions to efficiently establish internal information systems and realize cross-platform resource sharing.
The financial industry standard of the Guide for Information System Penetration Testing in the Securities and Futures Industry provides a set of general information system penetration testing framework, which provides operational guidance for ensuring test quality and controlling security risks in the planning, design, implementation, results and risk management of penetration testing. The implementation of the standard will help standardize the safe and stable conduct of penetration testing by industry institutions, strengthen the security operation guarantee of information systems, improve the industry's network security protection capability, and help the smooth operation of the capital market.
In the next step, the CSRC will continue to promote the construction of information technology in the capital market, focus on the formulation of basic standards, promote the development of standards in the fields of industry information exchange, information security, and constantly consolidate the foundation of scientific and technological supervision.